| README (161630) | README (168777) |
|---|---|
| 1OpenBSM 1.0 2 3 Introduction 4 5OpenBSM provides an open source implementation of Sun's BSM Audit API. | 1OpenBSM 1.0 2 3 Introduction 4 5OpenBSM provides an open source implementation of Sun's BSM Audit API. |
| 6Originally created under contract to Apple Computer by McAfee Research, 7this implementation is now maintained by volunteers and the generous 8contribution of several organizations. Coupled with a kernel audit 9implementation, OpenBSM can be used to maintain system audit streams, and 10is a foundation for an Audit-enabled system. | 6Originally created under contract to Apple Computer by McAfee Research, this 7implementation is now maintained by volunteers and the generous contribution 8of several organizations. Coupled with a kernel audit implementation, 9OpenBSM can be used to maintain system audit streams, and is a foundation for 10an Audit-enabled system. Portions of OpenBSM, including include files and 11token-building routines, are reusable in a kernel audit implementation, and 12may be found in the FreeBSD and Mac OS X kernels. |
| 11 12 Contents 13 14OpenBSM consists of several directories: 15 16 bin/ Audit-related command line tools 17 bsm/ System include files for BSM | 13 14 Contents 15 16OpenBSM consists of several directories: 17 18 bin/ Audit-related command line tools 19 bsm/ System include files for BSM |
| 20 compat/ Compatibility code to build on various OS's |
|
| 18 etc/ Sample /etc/security configuration files 19 libbsm/ Implementation of BSM library interfaces and man pages 20 man/ System call and configuration file man pages | 21 etc/ Sample /etc/security configuration files 22 libbsm/ Implementation of BSM library interfaces and man pages 23 man/ System call and configuration file man pages |
| 24 modules/ Directory for auditfilterd module source 25 test/ Test token sets and geneneration program 26 tools/ Tool directory, including audump to dump databases |
|
| 21 | 27 |
| 22OpenBSM currently builds on FreeBSD and Darwin. With Makefile adjustment 23and minor tweaks, it should build without problems on a broad range of 24POSIX-like systems. | 28The following programs are included with OpenBSM: |
| 25 | 29 |
| 30 audit Command line audit control tool 31 auditd Audit management daemon 32 auditfilterd Experimental event monitoring framework 33 auditreduce Audit trail reduction tool 34 audump Debugging tool to parse and print audit databases 35 praudit Tool to print audit trails 36 |
|
| 26 Building 27 28OpenBSM is currently built using autoconf and automake, which should allow 29for building on a range of operating systems, including FreeBSD, Mac OS X, 30and Linux. Depending on the availability of audit facilities in the 31underlying operating system, some components that depend on kernel audit | 37 Building 38 39OpenBSM is currently built using autoconf and automake, which should allow 40for building on a range of operating systems, including FreeBSD, Mac OS X, 41and Linux. Depending on the availability of audit facilities in the 42underlying operating system, some components that depend on kernel audit |
| 32support are built conditionally. Typically, build will be performed using | 43support are built conditionally. Typically, build will be performed using: |
| 33 34 ./configure 35 make 36 37To install, use: 38 39 make install 40 --- 5 unchanged lines hidden (view full) --- 46 47 ./configure --prefix=/home/rwatson/openbsm 48 make 49 make install 50 LD_LIBRARY_PATH=/home/rwatson/openbsm/libbsm ; export LD_LIBRARY_PATH 51 52You will need to manually propagate openbsm/etc/* into /etc on your system; 53this is not done automatically so as to avoid disrupting the current | 44 45 ./configure 46 make 47 48To install, use: 49 50 make install 51 --- 5 unchanged lines hidden (view full) --- 57 58 ./configure --prefix=/home/rwatson/openbsm 59 make 60 make install 61 LD_LIBRARY_PATH=/home/rwatson/openbsm/libbsm ; export LD_LIBRARY_PATH 62 63You will need to manually propagate openbsm/etc/* into /etc on your system; 64this is not done automatically so as to avoid disrupting the current |
| 54configuration. Currently, the locations of these files is not 55configurable. | 65configuration. Currently, the locations of these files is not configurable. |
| 56 57 Credits 58 | 66 67 Credits 68 |
| 59The following organizations and individuals have contributed substantially 60to the development of OpenBSM: | 69The following organizations and individuals have contributed substantially to 70the development of OpenBSM: |
| 61 62 Apple Computer, Inc. 63 McAfee Research, McAfee, Inc. 64 SPARTA, Inc. 65 Robert Watson 66 Wayne Salamon 67 Suresh Krishnaswamy 68 Kevin Van Vechten 69 Tom Rhodes 70 Wojciech Koszek 71 Chunyang Yuan 72 Poul-Henning Kamp 73 Christian Brueffer 74 Olivier Houchard 75 Christian Peron 76 Martin Fong 77 Pawel Worach 78 Martin Englund | 71 72 Apple Computer, Inc. 73 McAfee Research, McAfee, Inc. 74 SPARTA, Inc. 75 Robert Watson 76 Wayne Salamon 77 Suresh Krishnaswamy 78 Kevin Van Vechten 79 Tom Rhodes 80 Wojciech Koszek 81 Chunyang Yuan 82 Poul-Henning Kamp 83 Christian Brueffer 84 Olivier Houchard 85 Christian Peron 86 Martin Fong 87 Pawel Worach 88 Martin Englund |
| 89 Ruslan Ermilov 90 Martin Voros 91 Diego Giagio |
|
| 79 80In addition, Coverity, Inc.'s Prevent(tm) static analysis tool and Gimpel 81Software's FlexeLint tool were used to identify a number of bugs in the 82OpenBSM implementation. 83 84 Contributions 85 86The TrustedBSD Project would appreciate the contribution of bug fixes, --- 5 unchanged lines hidden (view full) --- 92Information on OpenBSM may be found on the OpenBSM home page: 93 94 http://www.OpenBSM.org/ 95 96Information on TrustedBSD may be found on the TrustedBSD home page: 97 98 http://www.TrustedBSD.org/ 99 | 92 93In addition, Coverity, Inc.'s Prevent(tm) static analysis tool and Gimpel 94Software's FlexeLint tool were used to identify a number of bugs in the 95OpenBSM implementation. 96 97 Contributions 98 99The TrustedBSD Project would appreciate the contribution of bug fixes, --- 5 unchanged lines hidden (view full) --- 105Information on OpenBSM may be found on the OpenBSM home page: 106 107 http://www.OpenBSM.org/ 108 109Information on TrustedBSD may be found on the TrustedBSD home page: 110 111 http://www.TrustedBSD.org/ 112 |
| 100$P4: //depot/projects/trustedbsd/openbsm/README#19 $ | 113$P4: //depot/projects/trustedbsd/openbsm/README#23 $ |